Please do not open a public GitHub issue for security vulnerabilities.

Report security issues privately via GitHub Security Advisories (preferred) or by emailing the repository owner through their GitHub profile contact options.

Include:

• A description of the issue and its impact
• Steps to reproduce or a proof of concept
• Affected versions and configuration (Nuxt version, deployment setup, Redis exposure, etc.)

You can expect an initial response within a reasonable timeframe. We will work with you on a fix and coordinated disclosure when appropriate.

This policy covers the nuxt-processor package and its published runtime (module, CLI, generated workers entry). Issues in downstream dependencies (BullMQ, ioredis, Nuxt, Redis itself) should be reported to those projects when they are the root cause.